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DETAILED ACTION 

1 . This action in response to application January 27, 2006. Claims (1-50) 
are pending. 

Claim Rejections - 35 USC § 102 

The following is a quotation of the appropriate paragraphs of 35 
U.S.C. 102 that form the basis for the rejections under this section made in this 
Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in 
public use or on sale in this country, more than one year prior to the date of application for patent in 
the United States. 

2. Claims 1-50 are rejected under 35 U.S.C. 102(b) as being anticipate by 
ORMAN, H.K., (NPL, "The Oakley Key Determination Protocol," IETF Standard- 
Working-Draft, May 1996 (1996-05), and Orman hereinafter). 

3. As to claim 1 , Orman teaches a mutual authentication method which 
authenticates a mutual relationship between a first authentication device 
and a second authentication device being connected via a communication 
line comprising, 

a step for storing as history data (i.e., shared key) commonly in each 
of said first authentication device and said second authentication device, 
an update result obtained by updating stored data for specifying said first 
authentication device and stored data for specifying said second 
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authentication device(i.e., Orman teaches a protocol to establish a shared key 
with an assigned identifier and associated with authenticated identities for the 
two parties [par. 2.1, lines 1-5]), by use of the stored data (i.e., pre-shared key) 
obtained from previous authentication per authentication carried out 
mutually in advance between said first authentication device and said 
second authentication device, where, said first authentication device 
includes, a first transmitting step which newly generates stored data by 
use of the history data being stored [par. 2.9, pg. 19, lines 15-20], encrypts 
the thus generated new stored data by use of said history data, and 
transmits the encryption data to the second authentication device [par. 
2.8.1, pg. 19, lines 1-4], and a first updating step which updates said history 
data with the stored data from said second authentication device and the 
new stored data thus transmitted, and the second authentication device 
includes, a second transmitting step which newly generates stored data by 
use of the stored data from said first authentication device and the history 
data being stored [par. 2.9, pg. 19, lines 15-20], encrypts the thus generated 
new stored data by use of said history data, and transmits the encryption 
data to the first authentication device [par. 2.8.1, pg. 19, lines 1-4], and a 
second updating step which updates said history data by the stored data 
from said first authentication device and said new stored data thus 
transmitted, and in at least one of said first authentication device and said 
second authentication device, when validity of the stored data is 
established based on the history data (i.e., Orman teaches a protocol to 
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establish a shared key with an assigned identifier and associated with 
authenticated identities for the two parties [par. 2.1 , lines 1-5]), it is verified that 
the mutual relationship between the first authentication device and the 
second authentication device is valid (i.e., Orman teaches each party 
validating the hash [par. 2.11, lines 18-23]). 

4. As to claim 2, Orman teaches a mutual authentication method where 
the stored data for specifying said first authentication device (i.e., initiator), 
which stores said history data as history data K, corresponds to secret 
data C and authentication data R (i.e., authentication payload), and the stored 
data for specifying said second authentication device (i.e., responder) 
corresponds to secret data S and authentication data Q (i.e., Orman teaches 
authentication payload (i.e., stored data) for responder [par. 2.8.1, pg. 19, lines 
1-10]). 

5. As to claim 3, Orman teaches mutual authentication where, said first 
transmitting step newly generates the secret data C by use of the secret 
data S and the authentication data R of the history data K being stored [par. 
2.9, lines 8-15], and newly generates the authentication data R of the history 
data K being stored, encrypts the generated new authentication data R by 
use of the history data K to obtain authentication A (i.e., authentication 
payload), and transmits said authentication data A (i.e., authentication 
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payload) and the new secret data C to the second authentication device 
[par. 2.8.1, pg. 19, lines 1-10]; 

said first updating step receives data from said second 
authentication device (i.e., responder), and updates the history data K by the 
new secret data C thus transmitted, the secret data S newly generated thus 
received, the authentication data Q newly generated thus received and said 
new authentication data R thus transmitted [par. 2.8.1]; 

said second transmitting step receives data from said first 
authentication device (i.e., initiator), newly generates secret data S by use of 
the new secret data C thus received and the authentication data Q of the 
history data K being stored, and newly generates the authentication data Q 
of the history data K being stored, encrypts the generated new 
authentication data Q by use of the history data K being stored to obtain 
the authentication data B, transmits to the first authentication device said 
authentication data B and new secret data S [par. 2.8.1]; 

and said second updating step updates said history data K, by the 
new secret data C thus received, the newly generated secret data S, the 
newly generated authentication data Q (i.e., authentication data / par. 2.8.1 , 
pg. 19, lines 1-10), and the new authentication data R thus received, 
wherein, in at least one of said first authentication device and said second 
authentication device, when validity of the stored data is established based 
on the history data K, it is verified that the mutual relationship between the 
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first authentication device and the second authentication device is valid 

[par. 2.8.1]. 

6. As to claim 4, Orman teaches a mutual authentication method where, 
said storing step stores as the history data, update results obtained by 
authentication in said first transmitting step, the first updating step, the 
second transmitting step and the second updating step [par. 2.8.1]. 

7. As to claim 5, Orman teaches a mutual authentication method at least 
one of the authentication data R and the authentication data Q is at least 
one of the followings: a random number (i.e., pseudo -random number) 
generated by random number generating means, data volume, and time- 
related data (e.g., one hour) (i.e., Orman teaches a random number based on a 
time period [par. 2.2.2 pg. 5, lines 1-4]). 

8. As to claim 6, Orman teaches a mutual authentication method where in 
the first transmitting step of said first authentication device, a value of a 
computation result from a function (i.e., Pseudo-Random Function) 
predefined by said secret data S (i.e. key id) and said authentication data R 
(i.e., data) is generated as the secret data C (i.e., signature) (i.e., Orman 
teaches a signature computation via a function [par. 2.4.1 .2, lines 1-20]), and in 
the second transmitting step of said second authentication device, a value 
of a computation result from a function (i.e., Pseudo-Random Function) 
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predefined by said secret data C and said authentication data Q is 
generated as the secret data S (i.e., Orman teaches a signature computation 
via a function [par. 2.4.1.2, lines 1-20]). 

9. As to claim 7, Orman teaches a mutual authentication method where, 
in the first transmitting step of said first authentication device (i.e., initiator), 
a value (i.e., new GRP identifier) of a computation result from a function 
predefined by said new authentication data R thus generated and said 
history data K is obtained as the authentication data A [par. 2.8.1, pg. 19, 
lines 1-10], and in the second transmitting step of said second 
authentication device, a value of a computation result from a function 
predefined by said new authentication data Q thus generated and said 
history data K is obtained as the authentication data B [par. 2.8.1]. 

10. As to claim 8, Orman teaches a mutual authentication method where, a 
verifying (i.e., validating) step of said first authentication device verifies that 
said mutual relationship is valid when a computation result (i.e., pre-shared 
key) of a predefined function (i.e. hash function) by the stored authentication 
data Q out of said history data K (i.e., Orman teaches a pre-shared key 
contains a key-id and key data), and the secret data C generated before 
previous transmission matches the secret data S thus received (i.e., Orman 
teaches a validation method utilizing a pre-shared key or certificate authority [par. 
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2.5.3 lines 1-16]. Orman teaches the pre-shared key is between two parties [par. 
2.5.2 lines 9-14]). 

11. As to claim 9, Orman teaches a mutual authentication method where 
verifying (i.e., validating) step of said second authentication device verifies 
that said mutual relationship is valid when a computation result of a 
predefined function (i.e., hash function) by the stored secret data S and the 
authentication data R out of said history data K matches the secret data C 
thus received (i.e., Orman teaches a validation method utilizing a pre-shared 
key or certificate authority [par. 2.5.3 lines 1-16]. Orman teaches the pre-shared 
key is between two parties [par. 2.5.2 lines 9-14]). 

12. As to claim 10, Orman teaches a mutual authentication method where, 
said storing step stores as the history data K (i.e., cookie), data obtained as 
a result of plural executions of said first transmitting (i.e., exchange) step, 
the second transmitting step, the first updating step and the second 
updating step (i.e., Orman teaches the use of cookie as part of information 
exchange between two parties [par. 2.4, lines 13- 17]). 

1 3. As to claim 1 1 , Orman teaches a mutual authentication device 
comprising a first authentication device (i.e., initiator) and a second 
authentication device (i.e., responder) being connected via a communication 
line (i.e., internet) [Introduction], which authenticates a mutual relationship 
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between said first authentication device and said second authentication 
device, including (i.e., Orman teaches a protocol to establish a shared key with 
an assigned identifier and associated with authenticated identities for the two 
parties [par. 2.1, lines 1-5]), a first memory which is provided in said first 
authentication device and stores stored data for specifying the first 
authentication device, a second memory which is provided in said second 
authentication device and stores stored data for specifying the second 
authentication device, authentication data storing means which store the 
stored data (i.e., pre-shared key) by previous authentication per 
authentication carried out mutually in advance between said first 
authentication device and said second authentication device [par. 2.5.2, 
lines 1-3], history data storing means which store as history data (i.e., cookie 
/[par. 2.1, pg. 3, lines 14-16]), an update result updated by use of said 
authentication data , commonly (i.e., one another) in each of said first 
authentication device and said second authentication device (i.e., Orman 
teaches an authentication of principals to one another [par. 2.5.2, lines 1-3], 
stored data generating means which are provided in an authentication 
device on a data-for-authentication transmitting side out of said first 
authentication device and said second authentication device (i.e., Orman 
teaches a pre-shared key is used to generate an authentication payload [par. 
2.5.2, lines 17-21], and generate new stored data (i.e., key exchange) by use 
of said history data (i.e., cookie) , first transmitting means (i.e., authentication 
payloads) which encrypt the thus generated new stored data (i.e., key) by 
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use of said history data and transmit the encryption data to the 
authentication device on a data-for-authentication receiving side (par. 
2.4.4., pg. 14, lines 13-17), stored data generating means which are provided 
in the authentication device on the data-for-authentication receiving side 
(i.e., Orman teaches pr-shared key is used to generate an authentication payload 
[par. 2.5.2, lines 26-28]), and generate new stored data (i.e., new secret keys) 
by use of the stored data from the authentication device on said data-for- 
authentication transmitting (i.e., exchange) side and the history data being 
stored (i.e. keyid), second transmitting means which encrypt the new stored 
data thus generated by use of said history data (i.e., Orman teaches 
encrypting a descriptor. Orman teaches the descriptor is part of the 
authentication payload [par. 2.8.1, pg. 19], and return the encryption data to 
the authentication device on said data-for-authentication transmitting side, 
first updating means which are provided in the authentication device on the 
data-for-authentication transmitting side and update said history data by 
the stored data returned from the authentication device on said data-for- 
authentication receiving side and the new stored data thus transmitted, and 
second updating means which are provided in the authentication device on 
the data-for-authentication receiving side and update said history data by 
the stored data from the authentication device on said data-for- 
authentication transmitting side and said new stored data thus returned, 
and further comprising, verifying means (i.e., shared key and assigned 
identifier) which verify that a mutual relationship between the first 
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authentication device and the second authentication device is valid when 
validity of the stored data is established based on said history data in at 
least one of said first authentication device and said second authentication 
device (i.e., Orman teaches a protocol to establish a shared key with an 
assigned identifier and associated with authenticated identities for the two parties 
[par. 2.1, lines 1-5]). 

14. As to claim 12, Oaklety teaches a mutual authentication device 
comprising, computing means which compute data (i.e., nonce) for 
authentication for encrypting the new stored data thus generated, by use of 
said history data (i.e., Orman teaches random number generation [par. 2.1, pg. 
4, lines 30-34] Orman teaches a nonce value used for encryption purposes [par. 
2.4.5, lines 1-8]). 

15. As to claim 13, Orman teaches a mutual authentication device 
comprising, random number generating means (i.e., nonce) which generate 
data for encryption (i.e., session) when the data for authentication is 
generated by said computing means (i.e., Orman teaches a nonce value used 
for encryption purposes [par. 2.4.5, lines 1-8]). 

16. As to claim 14, Orman teaches a onetime ID (i.e., nonce/ generated by a 
random number generator [par. 21, pg. 4, lines 11-14]) generating method 
which generates identification information usable for just one time as 
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onetime ID (i.e., nonce/ generated by a random number generator [par. 21, pg. 
4, lines 11-14]) in authentication between a plurality of devices or 
applications (par. 2.8.1, lines 1-7), where, in each of the devices or the 
applications which carry out said authentication, a variable shared key (i.e., 
shared key) is generated which changes per predefined communication unit 
requiring said authentication (i.e., Orman teaches a protocol to establish a 
shared key with an assigned identifier and associated with authenticated 
identities for the two parties [par. 2.1 , lines 1-5]), and a function value of one- 
way function is obtained (i.e., hash function [par. 2.1 , line 7]), in which the 
variable shared key (i.e., pre-shared key) is used as an argument [par. 2.9, 
lines 6-15], and said onetime ID is generated based on the function value 
(i.e., nonce/ generated by a random number generator [par. 21 , pg. 4, lines 1 1 - 
14]). 

17. As to claim 15, Orman teaches a onetime ID (i.e., nonce/ generated by a 
random number generator [par. 21, pg. 4, lines 11-14]) generating method 
which generates a onetime ID (i.e., nonce/ generated by a random number 
generator [par. 21, pg. 4, lines 11-14]) assuming, as the onetime, the 
identification information (i.e., nonce) usable just one time in authentication 
between a plurality of devices or applications (i.e., nonce/ generated by a 
random number generator [par. 21, pg. 4, lines 11-14]), where, in each of the 
devices or the applications which carry out said authentication (i.e., Orman 
teaches a each party validating the hash value [par. 2.11, lines 20-23]), a 
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variable shared key (i.e., shared key) is generated which changes per 
predefined communication unit requiring said authentication (i.e., Orman 
teaches a protocol to establish a shared key with an assigned identifier and 
associated with authenticated identities for the two parties [par. 2.1, lines 1-5]), 
and simultaneously a function value of one-way function is obtained in 
which the variable shared key and information regarding a communication 
sequence or communication number of times are used as arguments [par. 
2.11], and said onetime ID (i.e., nonce/ generated by a random number 
generator [par. 21 , pg. 4, lines 11-14]) is generated based on the function 
value (i.e., Orman teaches a one-way function [par. 21, lines 5-10]). 



18. As to claim 16, Orman teaches a onetime ID (i.e., nonce/ generated by a 
random number generator [par. 21 , pg. 4, lines 11-14]) generating method 
which generates a onetime ID assuming, as the onetime ID (i.e., nonce/ 
generated by a random number generator [par. 2.1, pg. 4, lines 11-14]), 
identification information usable just one time in authentication between a 
plurality of devices or applications, wherein, in each of the devices or the 
applications which carry out said authentication, a random number is 
generated within a predefined communication unit requiring said 
authentication (i.e., nonce/ generated by a random number generator [par. 21 , 
pg. 4, lines 11-14]), and simultaneously a function value of one-way function 
is obtained in which the random number and a predefined shared key are 
used as arguments (i.e., Orman teaches a one-way function [par. 21 , lines 5- 
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10]), and said onetime ID (i.e., nonce/ generated by a random number 
generator [par. 2.1, pg. 4, lines 11-14]) is generated based on the function 
value (i.e., Orman teaches a one-way function [par. 21, lines 5-10]). 

1 9. As to claim 1 7, Orman teaches a onetime ID (i.e., nonce/ generated by a 
random number generator [par. 2.1, pg. 4, lines 11-14]) generating method in 
which a onetime ID (i.e., nonce/ generated by a random number generator [par. 
2.1, pg. 4, lines 11-14]) is generated in both one device and another device 
(i.e., Orman teaches a protocol to establish a shared key with an assigned 
identifier and associated with authenticated identities for the two parties [par. 2.1 , 
lines 1-5]), assuming, as the onetime ID (i.e., nonce/ generated by a random 
number generator [par. 2.1, pg. 4, lines 11-14]), identification information 
usable just one time (i.e., nonce/ generated by a random number generator 
[par. 21, pg. 4, lines 11-14]) in authentication between one device and the 
other device (i.e., Orman teaches a protocol to establish a shared key with an 
assigned identifier and associated with authenticated identities for the two parties 
[par. 2.1, lines 1-5]), and simultaneously the one device transmits the 
onetime ID to the other device for the other device to compare and collate 
the onetime ID which the other device received from the one device with 
the onetime ID generated by the other device (i.e., Orman teaches each party 
validates the hash value [par. 2.1 1 , line 19-24], so that the one device 
identifies or authenticates the other device (i.e., Orman teaches a protocol to 
establish a shared key with an assigned identifier and associated with 
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authenticated identities for the two parties [par. 2.1, lines 1-5]), where, the one 
device and the other device generate (i.e., establish) a variable shared key 
(i.e., shared key) which changes per predefined communication unit 
requiring said authentication (i.e., Orman teaches a protocol to establish a 
shared key with an assigned identifier and associated with authenticated 
identities for the two parties [par. 2.1 , lines 1-5]), and simultaneously, a 
function value of one-way function is obtained in which the variable shared 
key is used as an argument and the onetime ID is generated based on the 
function value [par. 2.11, lines 9-1 7]. 

20. As to claim 18, Orman teaches a onetime ID generating method in 
which a onetime ID (i.e., nonce/ generated by a random number generator [par. 
2.1 , pg. 4, lines 1 1 -14]) is generated in both one device and another device, 
assuming, as the onetime ID, identification information usable just one time 
in authentication between one device and the other device, and 
simultaneously the one device transmits the onetime ID (i.e., nonce/ 
generated by a random number generator [par. 2.1, pg. 4, lines 11-14]) to the 
other device for the other device to compare and collate the onetime ID 
which the other device received from the one device with the onetime ID 
generated by the other device (i.e., Orman teaches a each party must validate 
the values before [par. 2.1 1 pg. 20, lines 23 -25]), so that the one device 
identifies or authenticates the other device, wherein, the one device and 
the other device generate (i.e., calculating the xor) a variable shared key 
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which changes per predefined communication unit requiring said 
authentication [par. 2.1 1] , and simultaneously, a function value of one-way 
function is obtained in which the variable shared key and a communication 
sequence or a communication number (i.e., hash value) of times are used as 
arguments [par. 2.1 1], and said onetime ID is generated (i.e., derived) based 
on the function value (i.e., Orman teaches a deriving additional KEYID using 
hashing function [par. 2.9, lines 1-3]). 

21 . As to claim 19, Orman teaches a onetime ID (i.e., nonce) generating 
method in which a onetime ID is generated in both one device and another 
device, assuming, as the onetime ID (i.e., nonce/ generated by a random 
number generator [par. 21, pg. 4, lines 11-14]), identification information 
usable just one time in authentication between one device and the other 
device (i.e., Orman teaches a protocol to establish a shared key with an 
assigned identifier and associated with authenticated identities for the two parties 
[par. 2.1, lines 1-5]), and simultaneously the one device transmits the 
onetime ID to the other device for the other device to compare and collate 
the onetime ID which the other device received from the one device with 
the onetime ID generated by the other device (i.e., Orman teaches a each 
party must validate the hash value [par. 2.1 1]), so that the one device 
identifies or authenticates the other device (i.e., Orman teaches a protocol to 
establish a shared key with an assigned identifier and associated with 
authenticated identities for the two parties [par. 2.1, lines 1-5]), where, the one 
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device and the other device generate a random number within a predefined 
communication unit requiring said authentication (i.e., nonce/ generated by a 
random number generator [par. 2.1 , pg. 4, lines 11-14]), and simultaneously, a 
function value of one-way function is obtained in which the random 
number (i.e., nonce) and a predefined shared key (i.e., pre-shared key) are 
used as arguments [par. 2.9, lines 6-15], and the onetime ID is generated 
based on the function value (i.e., nonce/ generated by a random number 
generator [par. 2.1, pg. 4, lines 11-14]). 

22. As to claim 20, Orman teaches a authentication method which carries 
out authentication between devices (i.e., parties) and applications (i.e., 
Orman teaches a protocol to establish a shared key with an assigned identifier 
and associated with authenticated identities for the two parties [par. 2.1 , lines 1- 
5]), assuming as onetime ID, identification information usable just one time 
(i.e., nonce/ generated by a random number generator [par. 2.1 , pg. 4, lines 11- 
14]), generates a variable shared key which changes per predefined 
communication unit requiring said authentication in each of the devices 
and applications carrying out said authentication (i.e., Orman teaches a 
protocol to establish a shared key with an assigned identifier and associated with 
authenticated identities for the two parties [par. 2.1 , lines 1-5]), obtains a 
function value of a one-way function in which the variable shared key is 
used as an argument [par. 2.11, lines 10-16], generates said onetime ID (i.e., 
nonce/ generated by a random number generator [par. 2.1, pg. 4, lines 11-14]) 



Application/Control Number: 10/518,499 Page 18 

Art Unit: 2131 

from the function value, and carries out the authentication between a first 
device and a second device by use of the onetime ID thus generated, 
comprising: 

a step in which said first device generates said onetime ID by use of 
the variable shared key, which is previously shared between said first and 
said second devices, and transmits to the second device the onetime ID 
thus generated, a function value of the one-way function Fc in which at 
least the ID predefined in the first device is used as an argument (i.e., 
nonce/ generated by a random number generator [par. 2.1, pg.4, lines 11-14]), 
and one of Diffie-Hellman public values previously stored in the first device 
[par. 2.4.1]; 

a step in which said second device obtains by computation said 
onetime ID and a function value of said one-way function Fc (i.e., nonce/ 
generated by a random number generator [par. 2.1, pg. 4, lines 11-14]), and 
determines validity of said first device by collating a computation result 
with the onetime ID received from said first device and the function value of 
the one-way function Fc [par. 2.4.1]; 

a step in which said second device transmits to said first device, 
when said second device determines that said first device is valid, a 
function value of the one-way function Fs in which at least the ID 
previously set in the second device is used as an argument, and another of 
the Diffie-Hellman public values previously stored in the second device 
[par. 2.4.1]; 
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and a step in which said first device obtains by computation a 
function value of said one-way function Fs, and determines the validity of 
said second device by collating a result of the computation and the 
function value of the one-way function Fs received from said second 
device [par. 2.4.1.2]. 

23. As to claim 21 , Orman teaches a authentication method where as said 
one-way function Fc (i.e., Orman teaches a one-way function [par. 21 , lines 5- 
10]), a pseudo-random number function is used in which a predefined 
shared key (i.e., pre-shared key) (i.e., Orman teaches random number 
generation [par. 2.1, pg. 4, lines 30-34]), one of said above Diffie-Hellman 
public values (abstract), the ID previously set in said first device, and said 
above onetime ID are used as arguments, and simultaneously, as said one- 
way function Fs (i.e., Orman teaches a one-way function [par. 21, lines 5-10]), a 
pseudo-random number function is used in which said predefined shared 
key (i.e., pre-shared key) (i.e., Orman teaches random number generation [par. 
2.1, pg. 4, lines 30-34]), one of said Diffie-Hellman public values (abstract), 
the other of said Diffie-Hellman public values [par. 2.4, pg. 8, lines 6-13], the 
ID previously set in said second device, and said onetime ID are used as 
arguments. 

24. As to claim 22, Orman teaches a authentication method which carries 
out authentication between plural devices or applications, assuming, as 
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onetime ID, identification information usable just one time, generates a 
variable shared key which changes per predefined communication unit 
requiring said authentication in each of the devices and applications 
carrying out said authentication (i.e., Orman teaches a protocol to establish a 
shared key with an assigned identifier and associated with authenticated 
identities for the two parties [par. 2.1 , lines 1-5]), obtains a function value of a 
one-way function in which the variable shared key and information 
regarding a communication sequence or communication number of times 
are used as arguments, generates said onetime ID from the function value 
(i.e., nonce/ generated by a random number generator [par. 2.1, pg. 4, lines 11- 
14]), and carries out the authentication between a first device and a second 
device by use of the onetime ID thus generated, comprising: 

a step in which said first device (i.e., initiator) generates, as a first 
onetime ID (i.e., nonce/ generated by a random number generator [par. 2.1, pg. 
4, lines 11-14]), a function value of one-way function in which a first variable 
shared key previously shared between said first device and said second 
device, and information regarding the communication sequence of the first 
device are used as arguments, and simultaneously encrypts, by use of said 
first variable shared key, ID previously set in the first device, ID previously 
set in said second device, one of Diffie-Hellman public values previously 
stored in the first device and said first onetime ID, and transmits the thus 
encrypted data and said first onetime ID to said second device [par. 2.4.1]; 
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a step in which said second device (i.e. responder) obtains by 
computation said first onetime ID and identifies said first device by 
collating a result of the computation and said first onetime ID received from 
said first device; 

a step in which said second device (i.e., responder) decodes said 
encryption data by use of said first variable shared key when said first 
device is identified, and determines validity of said first device based on 
the ID previously set in said first device, the ID previously set in said 
second device, and said first onetime ID, which are included in thus 
decoded data [par. 2.4.1]; 

a step in which said second device (i.e., responder) generates, as a 
second onetime ID (i.e., nonce/ generated by a random number generator [par. 
2.1, pg. 4, lines 11-14]), a function value of one-way function in which said 
first variable shared key and information regarding a communication 
sequence of said second device are used as arguments when it is 
determined that said first device is valid, and simultaneously, generates as 
a second variable shared key, a Diffie-Hellman common key from one of the 
Diffie-Hellman public values received from said first device and the other of 
the Diffie-Hellman public values previously stored in the second device, 
and transmits to said first device, a function value of one-way function h in 
which the second variable shared key, the ID previously set in said first 
device, the ID previously set in the second device and said second onetime 
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ID are used as arguments, the other of Diffie-Hellman public values, and 
said second onetime ID [par. 2.4.1]; 

a step in which the first device (i.e. initiator) obtains by computation 
said second onetime ID (i.e., nonce/ generated by a random number generator 
[par. 2.1, pg. 4, lines 11-14]), and the first device identifies said second 
device by collating a result of the computation and said second onetime ID 
received from said second device [par. 2.4.1]; 

and a step in which said first device (i.e., initiator) generates as said 
second variable shared key when the first device has identified said 
second device, a Diffie-Hellman common key from the other of said Diffie- 
Hellman public values received from said second device and the one of 
said Diffie-Hellman public values previously stored in the first device and 
simultaneously, obtains by computation a function value of said one-way 
function h by use of the second variable shared key, and determines 
validity of said second device by collating a result of the computation and 
the function value of the one-way function h received from said second 
device [par. 2.4.1]. 

25. As to claim 23, Orman teaches a authentication method where as one- 
way function for generating said second onetime ID, a one-way function 
being different from the one-way function for generating said first onetime 
ID is used [par. 2.4.1]. 
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26. As to claim 24, Orman teaches a authentication method which carries 
out authentication between plural devices or applications, assuming, as 
onetime ID, identification information usable just one time, generates a 
random number within a predefined communication unit requiring said 
authentication in each of the devices and applications carrying out said 
authentication (i.e., Orman teaches a protocol to establish a shared key with an 
assigned identifier and associated with authenticated identities for the two parties 
[par. 2.1, lines 1-5]), obtains a function value of a one-way function in which 
the random number and a predefined variable shared key are used as 
arguments, generates a onetime ID from the function value, and carries out 
the authentication between a first device and a second device by use of the 
onetime ID thus generated, comprising: 

a step in which said first device (i.e., initiator) generates a first 
random number and simultaneously obtains as a first onetime ID (i.e., 
nonce/ generated by a random number generator [par. 2.1, pg.4, lines 11-14]), a 
function value of one-way function in which said first shared key 
previously shared between the first device and said second device is used 
as an argument, and transmits the first onetime ID and said first random 
number to said second device [par. 2.4.1]; 

a step in which said second device generates a second random 
number and simultaneously obtains as a second onetime ID, a function 
value of one-way function in which said first random number and the first 
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shared key are used as arguments, and transmits to said first device the 
second onetime ID and said second random number [par. 2.4.1]; 

a step in which said first device (i.e., initiator) obtains by computation 
said second onetime ID based on said first random number and said first 
shared key, and determines validity of said second device by comparing a 
result of the computation with said second onetime ID received from said 
second device [par. 2.4.1]; 

a step in which said first device (i.e., initiator) generates a second 
shared key based on said first random number and said second random 
number, and simultaneously obtains as a third onetime ID, a function value 
of one-way function in which the second shared key, said first random 
number and said second random number are used as arguments, and 
transmits the third onetime ID to said second device [par. 2.4.1]; 

and a step in which said second device generates said second 
shared key based on said first random number and said second random 
number, and simultaneously, obtains by computation said third onetime ID 
based on the second shared key, said first random number and said 
second random number, and determines validity of said first device by 
comparing a result of the computation with said third onetime ID received 
from said first device [par. 2.4.1]. 

27. As to claim 25, Orman teaches a authentication method which carries 
out authentication between plural devices or applications, assuming, as 
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onetime ID, identification information usable just one time, generates a 
random number within a predefined communication unit requiring said 
authentication in each of the devices and applications carrying out said 
authentication, obtains a function value of a one-way function in which the 
random number and a predefined variable shared key are used as 
arguments, generates a onetime ID from the function value (i.e., nonce/ 
generated by a random number generator [par. 2.1, pg. 4, lines 11-14]), and 
carries out the authentication between a first device and a second device 
by use of the onetime ID thus generated, comprising: 

a step in which said first device (i.e., initiator) generates a first 
random number and simultaneously obtains as a first onetime ID (i.e., 
nonce/ generated by a random number generator [par. 2.1, pg. 4, lines 11-14]), a 
function value of one-way function in which a shared key previously shared 
between the first device and said second device is used as an argument, 
and transmits to said second device the first onetime ID and said first 
random number [par. 2.4.1]; 

a step in which said second device generates a second random 
number and simultaneously obtains as a second onetime ID, a function 
value of one-way function in which a first random number and said shared 
key are used as arguments, and transmits to said first device the second 
onetime ID and said second random number [par. 2.4.1]; 

a step in which said first device (i.e., initiator) obtains by computation 
said second onetime ID based on said first random number and said 
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shared key, and determines validity of said second device by comparing a 
result of the computation and said second onetime ID received from said 
second device [par. 2.4.1]; 

a step in which said first device generates, as the third onetime ID, a 
function value of one-way function in which said first random number (i.e., 
nonce/ generated by a random number generator [par. 2.1, pg.4, lines 11-14]), 
said second random number, and said shared key are used as arguments, 
and transmits the third onetime ID to said second device [par. 2.4.1]; 

and a step in which said second device generates by computation 
said third onetime ID based on said first random number (i.e., nonce/ 
generated by a random number generator [par. 2.1, pg. 4, lines 11-14]), said 
second random number and said shared key, and determines validity of 
said first device by comparing a result of the computation and said third 
onetime ID received from said first device [par. 2.4.1]. 

28. As to claim 26, Orman teaches a authentication method according to 
claim 24, wherein, said first random number and said second random 
number are transmitted in a state as being encrypted by a shared key 
previously shared (i.e., pre-shared key) between said first device and said 
second device [par. 2.4.1]. 

29. As to claim 27, Orman teaches a authentication method where said 
first random number and said second random number are transmitted in a 
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state as being encrypted by a shared key previously shared between said 
first device and said second device [par. 2.4.1]. 

30. As to claim 28, Orman teaches a authentication method according, 
where, in the step where said second device transmits to said first device 
said second onetime ID and said second random number, said second 
device has, as an initial random number, a random number shared between 
the second device and said first device, and carries out a predefined 
computation in which the initial random number and said first random 
number are used as arguments, and transmits a result of the computation 
to said first device, and said first device uses said result of the 
computation received from said second device as a material for 
determining validity of said second device, together with said 

second onetime ID [par. 2.4.1]. 

31 . As to claim 29, Orman teaches a authentication method where, in the 
step where said first device transmits said third onetime ID to said second 
device, said first device carries out a predefined computation in which said 
first random number and said second random number are used as 
arguments, and transmits a result of the computation to said second 
device, and said second device uses said result of the computation 
received from said first device as a material for determining validity of said 
first device, together with said third onetime ID [par. 2.4.1]. 



Application/Control Number: 10/518,499 
Art Unit: 2131 



Page 



32. As to claim 30, Orman teaches a authentication method where, in the 
step where said first device (i.e., initiator) transmits said third onetime ID to 
said second device, said first device carries out a predefined computation 
in which said first random number and said second random number are 
used as arguments, and transmits a result of the computation to said 
second device, and said second device uses said result of the computation 
received from said first device as a material for determining validity of said 
first device, together with said third onetime ID [par. 2.4.1]. 

33. As to claim 31 , Orman teaches a authentication method which carries 
out authentication between plural devices or applications, assuming, as 
onetime ID, identification information usable just one time, generates a 
random number within a predefined communication unit requiring 
authentication in each of the devices and applications carrying out said 
authentication (i.e., Orman teaches a protocol to establish a shared key with an 
assigned identifier and associated with authenticated identities for the two parties 
[par. 2.1 , lines 1 -5]), obtains a function value of a one-way function in which 
the random number and a predefined variable shared key are used as 
arguments, generates a onetime ID from the function value, and carries out 
the authentication between a first device and a second device by use of the 
onetime ID thus generated, comprising: 
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a step in which said first device (i.e., initiator) generates a first 
random number (i.e., nonce/ generated by a random number generator [par. 
2.1, pg. 4, lines 11-14]), simultaneously obtains as a first onetime ID, a 
function value of one-way function in which a shared key previously shared 
between the first device and said second device, the first stored random 
number and the second stored random number are used as arguments, 
and transmits to said second device, first encryption data which is 
obtained by encrypting with said shared key, the ID previously set in the 
first device, the ID previously set in said second device, and the first 
random number, together with said first onetime ID [par. 2.4.1]; 

a step in which said second device (i.e., responder) obtains by 
computation said first onetime ID, and said first device is identified by 
collating a result of the computation and said first onetime ID received from 
said first device [par. 2.4.1]; 

a step in which said second device decodes said first encryption 
data by use of said shared key when said second device has identified said 
first device, and validity of said first device is determined, based on the ID 
previously set in said first device and the ID previously set in the second 
device, which are included in the thus decoded data [par. 2.4.1]; 

a step in which said second device (i.e., responder) generates a 
second random number when said first device is determined to be valid, 
and simultaneously obtains as a second onetime ID, a function value of 
one-way function in which said first random number, said second stored 
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random number and said shared key are used as arguments, and transmits 
to said first device the second encryption data, which is obtained by 
encrypting with said shared key, the ID previously set in said first device, 
the ID previously set in said second device, and said second 
random number, together with said second onetime ID [par. 2.4.1]; 

a step in which said second device (i.e. responder) replaces said first 
stored random number and said second stored random number, 
respectively, with said first random number and said second random 
number [par. 2.4.1]; 

a step in which said first device (i.e., initiator) obtains by computation 
said second onetime ID, and said second device is identified by collating a 
result of the computation and said second onetime ID received from said 
second device [par. 2.4.1]; 

a step in which said first device (i.e., initiator) decodes said second 
encryption data by use of said shared key when said first device has 
identified said second device, validity of said second device is determined 
based on the ID previously set in said second device and the ID previously 
set in said first device, which are included in the thus decoded data [par. 
2.4.1]; 

and a step in which said first device replaces said first stored 
random number and said second stored random number, respectively, with 
said first random number and said second random number [par. 2.4.1]. 
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34. As to claim 32, Orman teaches a authentication method according to 
claim 31, wherein, after said first stored random number and said second 
stored random number are respectively replaced with said first random 
number and said second random number, the shared key is varied by 
generating said shared key based on the first random number and the 
second random number [par. 2.4.1]. 

35. As to claim 33, Orman teaches a server which carries out 
authentication between devices or applications, assuming, as onetime ID, 
identification information usable just one time, generates a variable shared 
key changing per a predefined communication unit requiring said 
authentication in each of the devices and applications carrying out said 
authentication(i.e., Orman teaches a protocol to establish a shared key with an 
assigned identifier and associated with authenticated identities for the two parties 
[par. 2.1 , lines 1 -5]), obtains a function value of a one-way function in 
which the variable shared key is used as an argument, generates said 
onetime ID from the function value, and carries out the authentication 
between the server and a client, by use of the onetime ID thus generated, 
comprising: 

receiving means which receive from said client, a function value of 
the one-way function Fc in which at least a client ID previously set in said 
client is used as an argument, one of Diffie-Hellman public values 
previously stored in said client, and said onetime ID [par. 2.4.1]; 
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determining means which obtain by computation a function value Fc 
of said one-way function and said onetime ID (i.e., nonce/ generated by a 
random number generator [par. 2.1, pg. 4, lines 11-14]), and determine validity 
of said client by comparing a result of the computation with said onetime 
ID received from said client and the function value of said one-way function 
Fc [par. 2.4.1]; 

and transmitting means which transmit to said client, when said 
determining means determine that said client is valid, a function value of 
one-way function Fs in which the server ID previously set in the server is 
used as an argument, and another of the Diffie-Hellman public values 
previously set in the server [par. 2.4.1]. 

36. As to claim 34, Orman teaches a client which carries out 
authentication between devices or applications, assuming, as onetime ID, 
identification information usable just one time, generates a variable shared 
key changing per a predefined communication unit requiring said 
authentication in each of the devices and applications carrying 
out said authentication (i.e., Orman teaches a protocol to establish a shared 
key with an assigned identifier and associated with authenticated identities for 
the two parties [par. 2.1 , lines 1-5]), obtains a function value of a one-way 
function in which the variable shared key is used as an argument, 
generates a onetime ID from the function value (i.e., nonce/ generated by a 
random number generator [par. 2.1, pg. 4, lines 11-14]), and carries out the 
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authentication between the server and the client, by use of the onetime ID 
thus generated, comprising: 

transmitting means which generate said onetime ID by use of the 
variable shared key previously shared between the client and said server, 
and simultaneously obtain a function value of one-way function Fc in which 
at least a client ID previously set in the client is used as an argument, and 
transmit to said server the onetime ID, the function value of the one-way 
function Fc, and one of Diffie-Hellman public values previously stored in 
the client [par. 2.4.1]; 

receiving means which receive from said server a function value of 
one-way function Fs in which at least the server ID previously set in said 
server is used as an argument and another of Diffie-Hellman public values 
previously stored in said server; and determining means which obtain by 
computation a function value of said one-way function Fs, and determine 
validity of said server by comparing a result of the computation with the 
function value of said one-way function Fs received from said server [par. 
2.4.1]. 

37. As to claim 35, Orman teaches a authentication system comprising a 
server and a client, in which said server and said client carry out 
authentication between devices or applications, assuming, as onetime ID 
identification information usable just one time, generate a variable shared 
key changing per a predefined communication unit requiring said 
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authentication in each of the devices and applications carrying out said 
authentication (i.e., Orman teaches a protocol to establish a shared key with an 
assigned identifier and associated with authenticated identities for the two parties 
[par. 2.1, lines 1-5]), obtain a function value of a one-way function in which 
the variable shared key is used as an argument, generates said onetime ID 
from the function value, and carries out the authentication between the 
server and a client, by use of the onetime ID thus generated, said server 
comprising: 

receiving means which receive from said client, a function value of 
the one-way function Fc in which at least a client ID previously set in said 
client is used as an argument, one of Diffie-Hellman public values 
previously stored in said client, and said onetime ID [par. 2.4.1]; 

determining means which obtain by computation a function value Fc 
of said one-way function and said onetime ID (i.e., nonce/ generated by a 
random number generator [par. 2.1, pg. 4, lines 11-14]), and determine validity 
of said client by comparing a result of the computation with said onetime 
ID received from said client and the function value of said one-way function 
Fc; and transmitting means which transmits to said client, when said 
determining means determine that said client is valid, a function value of 
one-way function Fs in which the server ID previously set in the server is 
used as an argument, and another of the Diffie-Hellman public values 
previously set in the server, and said client comprising [par. 2.4.1]: 
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transmitting means which generate said onetime ID by use of the 
variable shared key previously shared between said client and said server, 
and simultaneously obtain a function value of one-way function Fc in which 
at least the client ID previously set in the client is used as an argument, and 
transmit to said server the onetime ID, the function value of the one-way 
function Fc, and the one of Diffie-Hellman public values previously stored 
in the client [par. 2.4.1]; 

receiving means which receive from said server a function value of 
the one-way function Fs in which at least the server ID previously set in the 
server is used as an argument and the other of Diffie-Hellman public values 
previously stored in said server [par. 2.4.1]; 

and determining means which obtain by computation, a function 
value of said one-way function Fs, and determine validity of said server by 
comparing a result of the computation with the function value of said one- 
way function Fs received from said server [par. 2.4.1]. 

38. As to claim 36, Orman teaches a program to be executed by a server 
which carries out authentication between devices or applications, 
assuming as onetime ID, identification information usable just one time, 
generates a variable shared key changing per a predefined communication 
unit requiring said authentication in each of the devices and applications 
carrying out said authentication (i.e., Orman teaches a protocol to establish a 
shared key with an assigned identifier and associated with authenticated 
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identities for the two parties [par. 2.1, lines 1-5]), obtains a function value of a 
one-way function in which the variable shared key is used as an argument, 
generates a onetime ID from the function value, and carries out the 
authentication with a client by use of the onetime ID thus generated, 
comprising: 

a process which receives from a client a function value of one-way 
function Fc in which at least a client ID previously set in said client is used 
as an argument, one of Diffie-Hellman public values previously stored in 
said client, and said onetime ID (i.e., nonce/ generated by a random number 
generator [par. 2.1, pg. 4, lines 11-14]) [par. 2.4.1]; 

a process which obtains by computation a function value of said 
one-way function Fc and said onetime ID, and determines validity of said 
client by comparing a result of the computation with said onetime ID 
received from said client and the function value of said one-way function 
Fc [par. 2.4.1]; 

and a process which transmits to said client, when said client is 
determined to be valid, a function value of the one-time function Fs in 
which at least the server ID previously set in said server is used as an 
argument and another of the Diffie-Hellman public values previously stored 
in said server [par. 2.4.1]. 

39. As to claim 37, Orman teaches a program to be executed by a client 
which carries out authentication between devices or applications, 
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assuming, as onetime ID, identification information usable just one time, 
generates a variable shared key changing per a predefined communication 
unit requiring said authentication in each of the devices and applications 
carrying out said authentication (i.e., Orman teaches a protocol to establish a 
shared key with an assigned identifier and associated with authenticated 
identities for the two parties [par. 2.1 , lines 1-5]), obtains a function value of a 
one-way function in which the variable shared key is used as an argument, 
generates a onetime ID from the function value, and carries out the 
authentication with a server by use of the onetime ID thus generated, 
comprising: 

a process which generates said onetime ID by use of the variable 
shared key previously shared between the client and said server, obtains 
by computation a function value of one-way function Fc in which at least a 
client ID previously set in said client is used as an argument, and transmits 
to said server the onetime ID, the function value of the one-way function 
Fc, and one of Diffie-Hellman public values previously stored in said client; 
a process which receives a function value of one-way function Fs in which 
at least the server ID previously set in said server is used as an argument 
and the other of the Diffie-Hellman public values previously stored in said 
server [par. 2.4.1]; 

and a process which obtains by computation a function value of said 
one-way function Fs, and determines validity of said server, by comparing 
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a result of the computation with the function value of said one-way function 
Fs received from said server [par. 2.4.1]. 

40. As to claim 38, Orman teaches a server which carries out 
authentication between plural devices or applications, assuming, as 
onetime ID, identification information usable just one time, generates a 
variable shared key changing per a predefined communication unit 
requiring said authentication in each of the devices and applications 
carrying out said authentication (i.e., Orman teaches a protocol to establish a 
shared key with an assigned identifier and associated with authenticated 
identities for the two parties [par. 2.1 , lines 1-5]), obtains a function value of a 
one-way function in which the variable shared key and information 
regarding communication sequence and communication number of times 
are used as arguments, generates said onetime ID from the function value, 
and carries out the authentication with a client, by use of the onetime ID 
thus generated, comprising: 

receiving means which assume, as a first onetime ID, a function 
value of one-way function in which the first variable shared key previously 
shared between the client and said server and the information regarding 
the communication sequence of said client are used as arguments, and 
receive from said client encryption data which is obtained by encrypting 
with said first variable shared key, the first onetime ID, the client ID 
previously set in said client, the server ID previously set in the server, and 
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one of Diffie-Hellman public values previously stored in said client, 
together with said first onetime ID [par. 2.4.1]; 

determining means which obtain by computation said first onetime 
ID (i.e., nonce/ generated by a random number generator [par. 2.1 , pg. 4, lines 
1 1 -1 4]), identifies said client by collating a result of the computation with 
said onetime ID received from said client, decodes said encryption data by 
use of aid first variable shared key when said client has been identified, 
and determine validity of said client based on said client ID, said server ID 
and said first onetime ID, which are included in the thus decoded data [par. 
2.4.1] 

and transmitting means which generate as a second onetime ID (i.e., 
nonce/ generated by a random number generator [par. 2.1, pg. 4, lines 11-14]), a 
function value of one-way function in which said first variable shared key 
and information regarding a communication sequence of the server are 
used as arguments, and simultaneously, generate as a second variable 
shared key, a Diffie-Hellman common key from the one of the Diffie- 
Hellman public values received from said client and another of the Diffie- 
Hellman public values previously stored in the server, and transmit to said 
client a function value of one-way function h in which the second variable 
shared key, said client ID, said server ID and said second onetime ID are 
used as arguments, said other of Diffie-Hellman public values, and said 
second onetime ID [par. 2.4.1]. 
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41 . As to claim 39, Orman teaches a client which carries out 
authentication between plural devices or applications, assuming, as 
onetime ID, identification information usable just one time, generates a 
variable shared key changing per a predefined communication unit 
requiring said authentication in each of the devices and applications 
carrying out said authentication (i.e., Orman teaches a protocol to establish a 
shared key with an assigned identifier and associated with authenticated 
identities for the two parties [par. 2.1 , lines 1-5]), obtains a function value of a 
one-way function in which the variable shared key and information 
regarding a communication sequence and communication number of times 
are used as arguments, generates said onetime ID from the function value, 
and carries out the authentication with a client, by use of the onetime ID 
thus generated, comprising: 

transmitting means which generate as a first onetime ID (i.e., nonce/ 
generated by a random number generator [par. 2.1, pg. 4, lines 11-14]), a 
function value of one-way function in which the first variable shared key 
previously shared between the client and said server and information 
regarding a communication sequence of the client are used as arguments, 
and simultaneously by use of said first variable shared key, encrypt the 
client ID previously set in the client, the server ID previously set in said 
server, and one of Diffie-Hellman public values previously stored in the 
client, and said first onetime ID, and transmit to said server thus encrypted 
data and said first onetime ID [par. 2.4.1]; 
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receiving means which assume, as the second onetime ID, a 
function value of the one-way function in which said first variable shared 
key and the information regarding the communication sequence of said 
server are used as arguments, assume a Diffie-Hellman common key as the 
second variable shared key, and receive a function value of the one-way 
function h in which said second onetime ID, said second variable shared 
key, said client ID and said server ID are used as arguments, the other of 
the Diffie-Hellman public values previously stored in said server, and said 
second onetime ID [par. 2.4.1]; 

and determining means which obtain by computation said second 
onetime ID (i.e., nonce/ generated by a random number generator [par. 2.1, pg. 
4, lines 11-14]), identifies said server by collating a result of the 
computation with said second onetime ID received from said server, when 
said server has been identified, generate a Diffie-Hellman common key, as 
said second variable shared key, from the other of said Diffie-Hellman 
public values received from said server and the one of said Diffie-Hellman 
public values previously stored in the client, and simultaneously, obtain by 
computation a function value of the one-way function h by use of the 
second variable shared key, and determine validity of said server by 
collating a result of the computation and a function value of the one-way 
function h received from said server [par. 2.4.1]. 
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42. As to claim 40, Orman teaches a authentication system comprising a 
server and a client, in which said server and said client carry out 
authentication between plural devices or applications, assuming, as 
onetime ID, identification information usable just one time, generate a 
variable shared key changing per a predefined communication unit 
requiring said authentication in each of the devices and applications 
carrying out said authentication (i.e., Orman teaches a protocol to establish a 
shared key with an assigned identifier and associated with authenticated 
identities for the two parties [par. 2.1 , lines 1 -5]), obtain a function value of a 
one-way function in which the variable shared key and information 
regarding a communication sequence and communication number of times 
are used as arguments, generates a onetime ID from the function value (i.e., 
nonce/ generated by a random number generator [par. 2.1, pg. 4, lines 11-14]), 
and carries out the authentication between the server and a client, by use 
of the onetime ID thus generated, said server comprising: 

receiving means which assume, as a first onetime ID, a function 
value of one-way function in which the first variable shared key previously 
shared between said client and said server and the information regarding 
the communication sequence of the client are used as arguments, and 
receive from said client encryption data which is obtained by encrypting 
with said first variable shared key, the first onetime ID, the client ID 
previously set in said client, the server ID previously set in the server, and 
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one of Diffie-Hellman public values previously stored in said client, 
together with said first onetime ID [par. 2.4.1]; 

determining means which obtain by computation said first onetime 
ID (i.e., nonce/ generated by a random number generator [par. 2.1 , pg. 4, lines 
1 1 -1 4]), identifies said client by collating a result of the computation with 
said onetime ID received from said client, decode said encryption data by 
use of said first variable shared key when said client has been identified, 
and determine validity of said client based on said client ID, said server ID 
and said first onetime ID, which are included in the thus decoded data [par. 
2.4.1]; 

and transmitting means which generate as a second onetime ID, a 
function value of one-way function in which said first variable shared key 
and information regarding the communication sequence of the server are 
used as arguments, and simultaneously, generate as a second variable 
shared key, a Diffie-Hellman common key from the one of the Diffie- 
Hellman public values received from said client and another of the Diffie- 
Hellman public values previously stored in the server, and transmit to said 
client a function value of one-way function h in which the second variable 
shared key, said client ID, said server ID and said second onetime ID are 
used as arguments, the other of said Diffie-Hellman public values, and said 
second onetime ID, and said client comprising: 

transmitting means which generate as a first onetime ID (i.e., nonce/ 
generated by a random number generator [par. 2.1 , pg. 4, lines 1 1 -1 4]), a 



Application/Control Number: 1 0/51 8,499 Page 44 

Art Unit: 2131 

function value of one-way function in which the first variable shared key 
previously shared between said client and said server and information 
regarding the communication sequence of the client are used as 
arguments, and simultaneously by use of said first variable shared key, 
encrypt the client ID previously set in the client, the server ID previously 
set in said server, and the one of the Diffie-Hellman public values 
previously stored in the client, and said first onetime ID, and transmit to 
said server thus encrypted data and said first onetime ID [par. 2.4.1]; 

receiving means which assumes, as the second onetime ID, a 
function value of the one-way function in which said first variable shared 
key and the information regarding the communication sequence of said 
server are used as arguments, assume the Diffie-Hellman common key as 
the second variable shared key, and receive a function value of the one- 
way function h in which said second onetime ID, said second variable 
shared key, said client ID and said server ID are used as arguments, the 
other of the Diffie-Hellman public values previously stored in said server, 
and said second onetime ID [par. 2.4.1]; 

and determining means which obtain by computation said second 
onetime ID (i.e., nonce/ generated by a random number generator [par. 2.1 , pg. 
4, lines 11-14]), identifies said server by collating a result of the 
computation with said second onetime ID received from said server, when 
said server has been identified, generate the Diffie-Hellman common key, 
as said second variable shared key, from the other of said Diffie-Hellman 
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public values received from said server and the one of said Diffie-Hellman 
public values previously stored in the client, and simultaneously, obtain by 
computation a function value of said one-way function h by use of the 
second variable shared key, and determine validity of said server by 
collating a result of the computation and a function value of the one-way 
function h received from said server [par. 2.4.1]. 

43. As to claim 41 , Orman teaches a server which carries out 
authentication between plural devices or applications, assuming, as 
onetime ID, identification information usable just one time, generates a 
random number within a predefined communication unit requiring said 
authentication in each of the devices and applications carrying 
out said authentication, obtains a function value of a one-way function in 
which the random number and a predefined shared key are used as 
arguments, generates said onetime ID from the function value (i.e., nonce/ 
generated by a random number generator [par. 2.1, pg. 4, lines 11-14]), and 
carries out the authentication with a client, by use of the onetime ID thus 
generated, comprising: 

first receiving means (i.e., initiator) which assume, as a first onetime 
ID, a function value of the one-way function in which the first shared key 
previously shared between the server and said client is used as an 
argument, and receive from said client the first onetime ID and the first 
random number generated in said client [par. 2.4.1]; 
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transmitting means which generate a second random number and 
simultaneously obtain as a second onetime ID, a function value of one-way 
function in which said first random number said first shared key are used 
as arguments, and transmit to said client said second onetime ID and said 
second random number [par. 2.4.1]; 

second receiving (i.e., responder) means which assume, as a third 
onetime ID, a function value of one-way function in which said first random 
number, said second random number and the second shared key are used 
as arguments, and receive the third onetime ID from said client [par. 2.4.1]; 

and determining means which generate said second shared key 
based on said first random number and said second random number, and 
simultaneously, obtain by computation said third onetime ID based on said 
second shared key, said first random number and said second random 
number, and determine validity of said client by comparing a result of the 
computation with said third onetime ID received from said client [par. 2.4.1]. 

44. As to claim 42, Orman teaches a client which carries out 
authentication between plural devices or applications, assuming, as 
onetime ID, identification information usable just one time, generates a 
random number within a predefined communication unit requiring said 
authentication in each of the devices and applications carrying 
out said authentication (i.e., Orman teaches a protocol to establish a shared 
key with an assigned identifier and associated with authenticated identities for 
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the two parties [par. 2.1 , lines 1-5]), obtains a function value of a one-way 
function in which the random number and a predefined shared key are 
used as arguments, generates said onetime ID from the function value, and 
carries out the authentication with a server, by use of the onetime ID thus 
generated, comprising: 

first transmitting means which generate a first random number, and 
simultaneously obtain as a first onetime ID a function value of one-function 
in which a first shared key previously shared between the client and said 
server is used as an argument, transmit to said server the first onetime ID 
and said first random number; receiving means which assume, as the 
second onetime ID, a function value of one-way function in which said first 
random number and said first shared key are used as augments, and 
receive from said server the second onetime ID and the second random 
number generated in said server [par. 2.4.1]; 

determining means which obtain by computation said second 
onetime ID based on said first random number and said first shared key, 
and determine validity of said server by comparing a result of the 
computation with said second onetime ID received from said server [par. 
2.4.1]; 

and second transmitting means which generate a second shared key 
based on said first random number and said second random number when 
it is determined that said server is valid by said determining means, and 
simultaneously obtain as a third onetime ID, a function value of one-way 
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function in which the second shared key, said first random number and 
said second random number are used as arguments, and transmit to said 
server the third onetime ID [par. 2.4.1]. 

45. As to claim 43, Orman teaches a authentication system comprising a 
server and a client, in which said server and said client carry out 
authentication between plural devices or applications, assuming, as 
onetime ID, identification information usable just one time, generate a 
random number within a predefined communication unit requiring said 
authentication in each of the devices and applications carrying 
out said authentication (i.e., Orman teaches a protocol to establish a shared 
key with an assigned identifier and associated with authenticated identities for 
the two parties [par. 2.1 , lines 1-5]), obtain a function value of a one-way 
function in which the random number and the predefined shared key are 
used as arguments, generates said onetime ID from the function value (i.e., 
nonce/ generated by a random number generator [par. 2.1, pg.4, lines 11-14]), 
and carries out the authentication mutually between the server and a client, 
by use of the onetime ID thus generated, said server comprising: 

first receiving means which assume, as a first onetime ID, a function 
value of the one-way function in which the first shared key previously 
shared between said server and said client is used as an argument, and 
receive from said client the first onetime ID and a first random number 
generated in said client [par. 2.4.1]; 
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transmitting means which generate a second random number and 
simultaneously obtain as a second onetime ID, a function value of one-way 
function in which said first random number and said first shared key are 
used as arguments, and transmit to said client the second onetime ID and 
said second random number [par. 2.4.1]; 

second receiving means which assume, as a third onetime ID, a 
function value of one-way function in which said first random number (i.e., 
nonce/ generated by a random number generator [par. 2.1, pg.4, lines 11-14]), 
said second random number and the second shared key are used as 
arguments, and receive the third onetime ID from said client [par. 2.4.1]; 

and determining means which generate said second shared key 
based on said first random number and said second random number, and 
simultaneously, obtain by computation said third onetime ID based on said 
second shared key, said first random number and said second random 
number, and determine validity of said client by comparing a result of the 
computation with said third onetime ID received from said client, and said 
client comprising: 

first transmitting means which generate the first random number 
(i.e., nonce/ generated by a random number generator [par. 2.1 , pg. 4, lines 11- 
14]), and simultaneously obtain as the first onetime ID a function value of 
one-function in which the first shared key previously shared between the 
client and said server is used as an argument, transmit to said server the 
first onetime ID and said first random number [par. 2.4.1]; 
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receiving means which assume, as the second onetime ID, a function 
value of one-way function in which said first random number and said first 
shared key are used as augments, and receive from said server the second 
onetime ID and the second random number generated in said server [par. 
2.4.1]; 

determining means which obtain by computation said second 
onetime ID based on said first random number and said first shared key, 
and determine validity of said server by comparing a result of the 
computation and said second onetime ID received from said server [par. 
2.4.1]; 

and second transmitting means which generate the second shared 
key based on said first random number and said second random number 
when it is determined that said server is valid by said determining means, 
and simultaneously obtain as a third onetime ID, a function value of one- 
way function in which the second shared key, said first random number 
and said second random number are used as arguments, and transmit to 
said server the third onetime ID [par. 2.4.1]. 

46. As to claim 44, Orman teaches a server which carries out 
authentication between plural devices or applications, assuming, as 
onetime ID, identification information usable just one time, generates a 
random number within a predefined communication unit requiring said 
authentication in each of the devices and applications carrying out said 
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authentication (i.e., Orman teaches a protocol to establish a shared key with an 
assigned identifier and associated with authenticated identities for the two parties 
[par. 2.1, lines 1-5]), obtains a function value of a one-way function in which 
the random number and a predefined shared key are used as arguments, 
generates said onetime ID from the function value, and carries out the 
authentication with a client, by use of the onetime ID thus generated, 
comprising: 

first receiving means which assume, as the first onetime ID, a 
function value of one-way function in which a shared key previously shared 
between the server and said client is used as an argument, and receive 
from said client the first onetime ID and the first random number generated 
in said client [par. 2.4.1]; 

transmitting means which generate a second random number(i.e., 
nonce/ generated by a random number generator [par. 2.1, pg.4, lines 11-14]), 
and simultaneously obtain as a second onetime ID, a function value of one- 
way function in which said first random number and said shared key are 
used as arguments, and transmit to said client the second onetime ID and 
said second random number [par. 2.4.1]; 

second receiving means which assume, as a third onetime ID, a 
function value of one-way function in which said shared key, said first 
random number and said second random number are used as arguments, 
and receive from said client the third onetime ID [par. 2.4.1]; 
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and determining means which obtain by computation said third 
onetime ID based on said first random number, said second random 
number and said shared key, and determine validity of said client 
by comparing a result of the computation and said third onetime ID 
received from said client [par. 2.4.1]. 

47. As to claim 45, Orman teaches a client which carries out 
authentication between plural devices or applications, assuming, as 
onetime ID identification information usable just one time, generates a 
random number within a predefined communication unit requiring said 
authentication in each of the devices and applications carrying out said 
authentication (i.e., Orman teaches a protocol to establish a shared key with an 
assigned identifier and associated with authenticated identities for the two parties 
[par. 2.1 , lines 1 -5]), obtains a function value of a one-way function in which 
the random number and a predefined shared key are used as arguments, 
generates said onetime ID from the function value, and carries out the 
authentication with a server, by use of the onetime ID thus generated, 
comprising: 

first transmitting means which generate a first random number (i.e., 
nonce/ generated by a random number generator [par. 2.1, pg. 4, lines 11-14]), 
obtain as a first onetime ID, a function value of one-way function in which a 
shared key previously shared between the client and said server is used as 
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an argument, and transmit to said server the first onetime ID and said first 
random number [par. 2.4.1]; 

receiving means which assume, as a second onetime ID, a function 
value of one-way function in which said first random number and said 
shared key are used as arguments, and receive from said server the 
second onetime ID and the second random number generated in said 
server; determining means which obtain by computation said second 
onetime ID based on said first random number and said shared key, and 
determine validity of said server by comparing a result of the computation 
with said second onetime ID received from said server [par. 2.4.1]; 

and second transmitting means which obtain as a third onetime ID, a 
function value of the one-way function in which said first random number, 
said second random number and said shared key are used as arguments 
when said server is determined to be valid by said determination means, 
and transmit to said server the third onetime ID [par. 2.4.1]. 

48. As to claim 46, Orman teaches a authentication system comprising a 
server and a client, in which the server and the client carry out 
authentication between plural devices or applications, assuming, as 
onetime ID, identification information usable just one time, generate a 
random number within a predefined communication unit requiring said 
authentication in each of the devices and applications carrying out said 
authentication (i.e., Orman teaches a protocol to establish a shared key with an 
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assigned identifier and associated with authenticated identities for the two parties 
[par. 2.1 , lines 1-5]), obtain a function value of a one-way function in which 
the random number and a predefined shared key are used as arguments, 
generates said onetime ID from the function value, and carries out the 
authentication mutually between the server and a client, by use of the 
onetime ID thus generated, said server comprising: 

first receiving means which assume, as a first onetime ID, a function 
value of one-way function in which a shared key previously shared 
between said server and said client is used as an argument, and receive 
from said client the first onetime ID and a first random number generated in 
said client [par. 2.4.1]; 

transmitting means which generate a second random number, and 
simultaneously obtain as a second onetime ID, a function value of one-way 
function in which said first random number and said shared key are used 
as arguments, and transmit to said client the second onetime ID and said 
second random number [par. 2.4.1]; 

second receiving means which assume as a third onetime ID, a 
function value of one-way function in which said shared key, said first 
random number and said second random number are used as arguments, 
and receive from said client the third onetime ID [par. 2.4.1]; 

and determining means which obtain by computation said third 
onetime ID based on said first random number, said second random 
number and said shared key, and determine validity of said client by 
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comparing a result of the computation and said third onetime ID received 
from said client, and said client comprising: 

first transmitting means which generate the first random number 
(i.e., nonce/ generated by a random number generator [par. 2.1 , pg. 4, lines 11- 
14]), obtain as the first onetime ID, a function value of one-way function in 
which a shared key previously shared between said client and said server 
is used as an argument, and transmit to said server the first onetime ID and 
said first random number [par. 2.4.1]; 

receiving means which assumes, as a second onetime ID, a function 
value of one-way function in which said first random number and said 
shared key are used as arguments, and receive from said server the 
second onetime ID and the second random number generated in said 
server [par. 2.4.1]; 

determining means which obtain by computation said second 
onetime ID based on said first random number and said shared key, and 
determine validity of said server by comparing a result of the computation 
with said second onetime ID received from said server [par. 2.4.1]; 

and second transmitting means which obtain as the third onetime ID, 
a function value of the one-way function in which said first random 
number, said second random number and said shared key are used as 
arguments when said server is determined to be valid by said 
determination means, and transmit to said server the third onetime ID [par. 
2.4.1]. 
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49. As to claim 47, Orman teaches a server which carries out 
authentication between plural devices or applications, assuming, as 
onetime ID, identification information usable just one time, generates a 
random number within a predefined communication unit requiring said 
authentication in each of the devices and applications carrying out said 
authentication^. e., Orman teaches a protocol to establish a shared key with an 
assigned identifier and associated with authenticated identities for the two parties 
[par. 2.1 , lines 1 -5]), obtains a function value of a one-way function in which 
the random number and a predefined shared key are used as arguments, 
generates said onetime ID from the function value, and carries out the 
authentication with a client, by use of the onetime ID thus generated, 
comprising: 

receiving means which assume, as a first onetime ID, a function 
value of one-way function in which the shared key previously shared 
between the server and said client, the first stored random number and the 
second stored random number are used as arguments, receive the first 
onetime ID from said client and simultaneously receive from said client, 
first encryption data which is obtained by encrypting with said shared key, 
the first random number generated in said client, a client ID previously set 
in said client and a server ID previously set in the server [par. 2.4.1]; 

determining means which obtain by computation said first onetime 
ID (i.e., nonce/ generated by a random number generator [par. 2.1 , pg. 4, lines 
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1 1 -1 4]), identify said client by collating a result of the computation with said 
first onetime ID received from said client, decode the first encryption data 
by use of said shared key when said client has been identified, and 
determine validity of said client based on said client ID and said server ID 
included in thus decoded data [par. 2.4.1]; 

transmitting means which generate a second random number when 
said determining means determine that said client is valid, and 
simultaneously obtain as a second onetime ID, a function value of one-way 
function in which said first random number(i.e., nonce/ generated by a 
random number generator [par. 2.1, pg. 4, lines 11-14]), said second stored 
random number and said shared key are used as arguments, and transmit 
to said client second encryption data which is obtained by encrypting with 
said shared key said client ID, said server ID and said second random 
number, together with said second onetime ID [par. 2.4.1]; 

and replacing means which replace said first stored random number 
and said second stored random number respectively with said first random 
number and said second random number [par. 2.4.1]. 

50. As to claim 48, Orman teaches a client which carries out 
authentication between plural devices or applications, assuming, as 
onetime ID, identification information usable just one time, generates a 
random number within a predefined communication unit requiring said 
authentication in each of the devices and applications carrying out said 
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authentication (i.e., Orman teaches a protocol to establish a shared key with an 
assigned identifier and associated with authenticated identities for the two parties 
[par. 2.1, lines 1-5]), obtains a function value of a one-way function in which 
the random number and a predefined shared key are used as arguments, 
generates said onetime ID from the function value, and carries out the 
authentication with a server, by use of the onetime ID thus generated, 
comprising: 

transmitting means which generate a first random number, obtain as 
a first onetime ID, a function value of one-way function in which a shared 
key previously shared between the client and said server, the first stored 
random number, and the second stored random number are used as 
arguments, and transmit to said server, first encryption data which is 
obtained by encrypting with said shared key, a client ID previously set in 
the client, a server ID previously set in said server and said first random 
number, together with said first onetime ID [par. 2.4.1]; 

receiving means which assume, as a second onetime ID, a function 
value of one-way function in which said first random number (i.e., nonce/ 
generated by a random number generator [par. 2.1, pg. 4, lines 11-14]), said 
second stored random number and said shared key are used as 
arguments, receive said second onetime ID from said server, and 
simultaneously receive from said server second encryption data which is 
obtained by encrypting with said shared key the second random number 
generated in said server, said client ID and said server ID [par. 2.4.1]; 
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determining means which obtain by computation said second 
onetime ID, identify said server by collocating a result of the computation 
with said second onetime ID received from said server, decode said second 
encryption data by use of said shared key when said server has been 
identified, and determine validity of said server based on said server ID and 
said client ID included in thus decoded data [par. 2.4.1]; 

and replacing means which replace said first stored random number 
and said second stored random number respectively with said first random 
number and said second random number [par. 2.4.1]. 

51. As to claim 49, Orman teaches a authentication system comprising a 
server and a client, in which said server and said client carry out 
authentication between plural devices or applications, assuming, as 
onetime ID, identification information usable just one time, generate a 
random number within a predefined communication unit requiring said 
authentication in each of the devices and applications carrying out said 
authentication (i.e., Orman teaches a protocol to establish a shared key with an 
assigned identifier and associated with authenticated identities for the two parties 
[par. 2.1, lines 1-5]), obtain a function value of a one-way function in which 
the random number and a predefined shared key are used as arguments, 
generates said onetime ID from the function value, and carries out the 
authentication mutually between the server and a client, by use of the 
onetime ID thus generated, said server comprising: 
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receiving means which assume, as a first onetime ID, a function 
value of one-way function in which the shared key previously shared 
between the server and client, a first stored random number and a second 
stored random number are used as arguments, receive the first onetime ID 
from said client and simultaneously receive from said client, first 
encryption data which is obtained by encrypting with said shared key, the 
first random number generated in said client, a client ID previously set in 
said client and a server ID previously set in the server [par. 2.4.1]; 

determining means which obtain by computation said first onetime 
ID, identify said client by collating a result of the computation with said first 
onetime ID received from said client, decode said first encryption data by 
use of said shared key when said client has been identified, and determine 
validity of said client based on said client ID and said server ID included in 
thus decoded data [par. 2.4.1]; 

transmitting means which generate a second random number when 
said determining means determine that said client is valid, and 
simultaneously obtain as a second onetime ID, a function value of one-way 
function in which said first random number (i.e., nonce/ generated by a 
random number generator [par. 2.1, pg. 4, lines 11-14]), said second stored 
random number and said shared key are used as arguments, and transmit 
to said client second encryption data which is obtained by encrypting with 
said shared key said client ID, said server ID and said second random 
number, together with said second onetime ID [par. 2.4.1]; 
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and replacing means which replace said first stored random number 
and said second stored random number respectively with said first random 
number and said second random number, and said client comprising [par. 
2.4.1]: 

transmitting means which generate the first random number (i.e., 
nonce/ generated by a random number generator [par. 2.1, pg.4, lines 11-14]), 
obtain as the first onetime ID, a function value of one-way function in which 
a shared key previously shared between said client and said server, the 
first stored random number, and the second stored random number are 
used as arguments, and transmit to said server, first encryption data which 
is obtained by encrypting with said shared key, the client ID previously set 
in the client, the server ID previously set in said server and said first 
random number, together with said first onetime ID [par. 2.4.1]; 

receiving means which assume, as the second onetime ID, a 
function value of one-way function in which said first random number, said 
second stored random number and said shared key are used as 
arguments, receive the second onetime ID from said server, and 
simultaneously receive from said server, second encryption data which is 
obtained by encrypting with said shared key the second random number 
generated in said server, said client ID and said server ID [par. 2.4.1]; 

determining means which obtain by computation said second 
onetime ID, identify said server by collocating a result of the computation 
with said second onetime ID received from said server, decode said second 
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encryption data by use of said shared key when said server has been 
identified, and determine validity of said server based on said server ID and 
said client ID included in thus decoded data [par. 2.4.1]; 

and replacing means which replace said first stored random number 
and said second stored random number respectively with said first random 
number and said second random number [par. 2.4.1]. 

52. As to claim 50, Orman teaches a authentication system where after 
said server and said client replace said first stored random number and 
said second stored random number respectively with said first random 
number and said second random number, variation of the shared key is 
made by generating said shared key based on the first stored random 
number and the second stored random number [par. 2.4.1]. 

Prior Art Made of Record 

53. The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. 

a. Stirbu (US Patent Publication No. 2003/0200433) Method and 
apparatus for providing peer authentication for an internet key exchange. 
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